Please use this identifier to cite or link to this item:
Title: BlockU: Extended usage control in and for Blockchain
Authors: Khan, Yasar
Ali, Toqeer
Fariz, Megat
Moreira, Fernando
Branco, Frederico
Martins, José
Gonçalves, Ramiro
Keywords: Fabric
Hyperledger Composer
Permissioned Blockchain
Issue Date: 2020
Publisher: John Wiley & Sons
Citation: Khan, Y., Ali, T., Fariz, M., et al. (2020). BlockU: Extended usage control in and for Blockchain. Expert Systems, 1-12. doi: 10.1111/exsy.12507. Disponível no Repositório UPT,
Abstract: An electronic business transaction among untrusted bodies without consulting a mutually trusted party has remained widely accepted problem. Blockchain resolves this problem by introducing peer-to-peer network with a consensus algorithm and trusted ledger. Blockchain originally introduced for cryptocurrency that came with proof-of-work consensus algorithm. Due to some performance issues, scientists brought concept of permissioned Blockchain. Hyperledger Fabric is a permissioned Blockchain targeting business-oriented problems for industry. It is designed for efficient transaction execution over Blockchain with pluggable consensus model; however, there is limitation of rapid application development. Hyperledger introduced a new layer called Hyperledger Composer on top of the Fabric layer, which provides an abstract layer to model the business application readily and quickly. Composer provides a smart contract to extend the functionality and flexibility of Fabric layer and provides a way of communication with other systems to meet business requirements. Hyperledger Composer uses role-based access control (RBAC) model to secure access to its valuable assets. However, RBAC is not enough because many business deals require continuous assets monitoring. Our proposed model, BlockU, covers all possible access control models required by a business. BlockU can monitor assets continuously during transactions and updates attributes accordingly. Moreover, we incorporate hooks in Hyperledger Composer to implement extended permission model that provides extensive permission management capability on an asset. Subsequently, our proposed enhanced access control model is implemented with a minimal change to existing Composer code base and is backward compatible with the current security mechanism.
ISSN: 0266-4720 (Print)
1468-0394 (Online)
Appears in Collections:REMIT – Artigos em Revistas Internacionais / Papers in International Journals

Files in This Item:
File Description SizeFormat 
J37.pdf1.47 MBAdobe PDFView/Open    Request a copy

Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.